A significant cybersecurity incident has put millions of internet users at risk. A massive data breach has exposed a vast collection of email addresses and passwords.
The breach involves a staggering 3.5 terabytes of stolen data. It includes 183 million unique email accounts, 16.4 million of which have never been seen in previous leaks.
According to cybersecurity expert Troy Hunt, the data comes from “infostealer” malware. This malicious software runs on infected computers and captures passwords as users type them into websites.
183M email passwords exposed in data leak — including millions of Gmail accounts — here’s how to check if yours is safe https://t.co/tA6o9EoUiQ pic.twitter.com/h3IIbQVbRx
— New York Post (@nypost) October 27, 2025Security experts warn that this breach significantly increases the risk of cyber threats. The exposed credentials can be used in phishing attacks and to gain unauthorised access to accounts. You can check if your information was part of this breach. Visit the website HaveIBeenPwned.com and enter your email address.
Read: Google Warns of Extortion Emails Targeting Executives
The site will tell you if your credentials were found in this or any other known data breach. It provides a detailed timeline and source of the leak. Google has clarified that its Gmail systems were not hacked. The compromised credentials were stolen from individual users’ infected devices, not from a breach of Google’s servers.
If your information is flagged, take immediate action. Change your passwords for all important accounts, especially your email account. Enable two-factor authentication (2FA) wherever available. Consider using passkeys, a more secure login method Google encourages.
